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Examiner's Statement 

1 . The Drawings filed 1 1/27/2000, need to be submitted to the Draftsperson to be approved 
for Formal Drawings. 

Reasons For Allowance 

2. Status of Claims: Claims 1-4, 6-13, 15-22, and 24-27, were previously rejected, office 
action dated 2/15/05, and 5, 14, and 23 were indicated as objected to claims. Claims 5, 14, and 
23 have been incorporated into Independent claims, 1,10, and 19 and thus are now allowable the 
reasons the claims above are allowable are listed below: 

3. In the prior art of by generation of certificate, the prior art fails to disclose or suggest, 
"prior to sending the second message, determining if the database already contains a prior client 
public key associated with the client email address, if the database already contains the prior 
client public key, including the prior client public key in the request for identity confirmation 
sent to the client in the second message, so that the client can indicate that the server should 
replace the prior client public key with the client public key"; an example of prior art that fails to 
disclose the limitations above is Dyksterhouse. Dyksterhouse discloses a database that 
associates key with email addresses. Clients of Dyksterhouse can access keys on the server 
using a search. In the prior art of generation of a certificate and more specifically Dyksterhouse 
does not disclose or suggest, the limitations above, the client does not request the server to 
replace the prior client public key with the client public key, the server or certificate authority 
(CA) has a certificate stored in the database that has a validity period associated with it, and 
when the validity period is about to expire or has expired, the old certificate is replaced with a 
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new certificate, the client does not request this to happen in the prior art of generation of 
certificate. 

4. In the prior art of revocation or expiration, prior art fails to disclose or suggest, "prior to 
sending the second message, determining if the database already contains a prior client public 
key associated with the client email address, if the database already contains the prior client 
public key, including the prior client public key in the request for identity confirmation sent to 
the client in the second message, so that the client can indicate that the server should replace the 
prior client public key with the client public key"; an example of prior art in revocation or 
expiration is, Aucsmith. Aucsmith discloses the client of Aucsmith discloses that the client 
determines whether the key is in an invalidity database(revocation). Upon receipt of a key the 
client performs a lookup in the invalidity database. In the prior art of revocation or expiration, a 
new revocation lists is updated and given to the client or the client can download the new 
revocation list. In the prior art of revocation or expiration, there is not disclosed or suggested, 
"prior to sending the second message, determining if the database already contains a prior client 
public key associated with the client email address, if the database already contains the prior 
client public key, including the prior client public key in the request for identity confirmation 
sent to the client in the second message, so that the client can indicate that the server should 
replace the prior client public key with the client public key". 

5. In the prior art of key management, prior art fails to disclose or suggest, "prior to sending 
the second message, determining if the database already contains a prior client public key 
associated with the client email address, if the database already contains the prior client public 
key, including the prior client public key in the request for identity confirmation sent to the client 
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in the second message, so that the client can indicate that the server should replace the prior 
client public key with the client public key"; an example of prior art in key management that 
does not disclose or suggest the limitations above is Van Oorshot. Van Oorschot discloses that 
the trusted public keys may be updated when a policy change occurs. The policy change, which 
is initiated by the system administrator or a certificate authority administrator, adds or deletes 
trusted certificate authorities from a client's list. Further, Van Oorshot discloses that the system 
administrator, via the policy authority would instruct the local certification authorities to update 
the sets of trusted certification authority public keys of their clients. Van Oorshot discloses the 
update, which contains a set of certification authority signature public key certificates would 
include the public keys of each of the certification authorities. This is in contrast to the claim 
limitations which claims, "prior to sending the second message, determining if the database 
already contains a prior client public key associated with the client email address, if the database 
already contains the prior client public key, including the prior client public key in the request 
for identity confirmation sent to the client in the second message, so that the client can indicate 
that the server should replace the prior client public key with the client public key". The 
certificate authority in the prior art of key management is responsible for updating the keys, not 
the client. 

6. In the prior art of public key method, prior art fails to disclose or suggest, "prior to 
sending the second message, determining if the database already contains a prior client public 
key associated with the client email address, if the database already contains the prior client 
public key, including the prior client public key in the request for identity confirmation sent to 
the client in the second message, so that the client can indicate that the server should replace the 



Application/Control Number: 09/724,337 Page 5 

Art Unit: 2131 

prior client public key with the client public key", an example of prior art that fails to disclose or 
suggest the limitations above is Liu et al Liu et al. discloses a key list is a repository for public 
keys. The public keys of Liu et al. are indexed by the e-mail address. The key server looks-up 
the status of the sender's public key and returns the status information to the recipient's viewer. 
The viewer displays the decrypted message and time stamp along with the sender's public key 
status. There is no suggestion or disclosure in the prior art of public key method, that discloses 
or suggests, "prior to sending the second message, determining if the database already contains a 
prior client public key associated with the client email address, if the database already contains 
the prior client public key, including the prior client public key in the request for identity 
confirmation sent to the client in the second message, so that the client can indicate that the 
server should replace the prior client public key with the client public key". 
7. In non-patent literature, fails to teach or suggest, "prior to sending the second message, 
determining if the database already contains a prior client public key associated with the client 
email address, if the database already contains the prior client public key, including the prior 
client public key in the request for identity confirmation sent to the client in the second message, 
so that the client can indicate that the server should replace the prior client public key with the 
client public key" . An example of non-patent literature, that fails to teach or suggest, prior to 
sending the second message, determining if the database already contains a prior client public 
key associated with the client email address, if the database already contains the prior client 
public key, including the prior client public key in the request for identity confirmation sent to 
the client in the second message, so that the client can indicate that the server should replace the 
prior client public key with the client public key", is Eastlake et al. Eastlake et al. discloses 
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DNSSEC zone keys can be rolled over, the old public key should be left in the zone, along with 
the addition of the new public key. This is in contrast, to claim limitations that calls for, prior to 
sending the second message, determining if the database already contains a prior client public 
key associated with the client email address, if the database already contains the prior client 
public key, including the prior client public key in the request for identity confirmation sent to 
the client in the second message, so that the client can indicate that the server should replace the 
prior client public key with the client public key". 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jenise E. Jackson whose telephone number is (571) 272-3791. 
The examiner can normally be reached on M-Th (6:00 a.m. - 3:30 p.m.) alternate Friday's. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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